Top10 publishers:
bobrov107 
sp1d3rs54 
bigbear_38 
guido37 Twitter
bl4de37 
jobert37 
isox36 
4lemon35 
geeknik35 
edio34 

the unofficial HackerOne disclosure timeline.

X
RATELIMITED disclosed a bug submitted by whoami021 
Apache Version Disclosure Through Directory Indexing
15 Dec 2018 timeline
RATELIMITED disclosed a bug submitted by dhamu_harker 
Information Disclosure on https://theendlessweb.com/
15 Dec 2018 timeline
Twitter disclosed a bug submitted by edent 
Incorrect details on OAuth permissions screen allows DMs to be read without permission
14 Dec 2018 timeline
Imgur disclosed a bug submitted by sbakhour 
Ability to login to the Nexus Repo Manager from https://nexus.imgur.com/
13 Dec 2018 timeline
Augur disclosed a bug submitted by michaelx 
Indisputable Reporting via Arbitrarily Large Initial Reports
13 Dec 2018 timeline
Brave Software disclosed a bug submitted by tvgfvghjbhunj 
Brave allows flash to follow 307 redirects to other origins with arbitrary content-types
12 Dec 2018 timeline
Paragon Initiative Enterprises disclosed a bug submitted by whitehat_hacker 
Github repo's wiki publicly editable
12 Dec 2018 timeline
Liberapay disclosed a bug submitted by strukt Twitter
Publicly editable GitHub wikis
12 Dec 2018 timeline
Ian Dunn disclosed a bug submitted by whitehat_hacker 
Security issue: Github repo's wiki publicly editable
12 Dec 2018 timeline
Shopify disclosed a bug submitted by dr_dragon 
Bypass Filter and get Stored Xss
12 Dec 2018 timeline
HackerOne disclosed a bug submitted by mik317 
GitHub users outside of HackerOne organization can create and update Wiki pages of certain public HackerOne repositories
12 Dec 2018 timeline
VK.com disclosed a bug submitted by executor 
???????????? ??? + ????????? ?????????? ??????? ? ???????? ????? ?????? ??????
12 Dec 2018 timeline
Twitter disclosed a bug submitted by csanuragjain 
Opportunity to post hidden comments
11 Dec 2018 timeline
RATELIMITED disclosed a bug submitted by hamzamandil 
Banner Grabbing - Apache Server Version Disclousure
11 Dec 2018 timeline
RATELIMITED disclosed a bug submitted by hamzamn2098 
information disclosure which leak the apache version
11 Dec 2018 timeline
RATELIMITED disclosed a bug submitted by hach3ro 
HTTP PUT method enabled
11 Dec 2018 timeline
HackerOne disclosed a bug submitted by haxta4ok00 
Inline banner on Report page discloses whether organization runs a private program
11 Dec 2018 timeline
RubyGems disclosed a bug submitted by plover 
DNS SRV lookup of file:// sources enables local hijacking of gems
11 Dec 2018 timeline
RATELIMITED disclosed a bug submitted by emitrani 
HTTP PUT method enabled
11 Dec 2018 timeline
Twitter disclosed a bug submitted by nahoragg 
CORS misconfig | Account Takeover
10 Dec 2018 timeline
1 ... 3 4 5 6 7 ... 321
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM